Vulnerability: SGI IRIX 6.5

Logging into an IRIX 6.5 machine with particular environment variables set can lead to /usr/lib/iaf/scheme (login) dumping core. Since "scheme" is suid root, this could potentially lead to a root compromise. A local account would be required to exploit any such vulnerability.

These issues have been corrected in future releases of IRIX.

For the patch, see ftp://patches.sgi.com/support/free/security/advisories/20030702-01-P.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about SGI Australia

Show Comments